$user = $_POST['username'];
$pass = $_POST['password'];
$sql = mysqli_query($conn, "SELECT * FROM m_user where username = '******' and password = '******' ");
$arr = mysqli_fetch_array($sql);
$id = $arr['sid'];
$password = $arr['password'];
$username = $arr['username'];
$role = $arr['role'];
$nama = $arr['nama'];
// $role = $arr['has_role'];
if ($user == $username && $pass == $password && ($user != "" && $pass != "")) {
session_start();
$_SESSION['username'] = $username;
$_SESSION['password'] = $password;
$_SESSION['user_sid'] = $id;
$_SESSION['nama'] = $nama;
$_SESSION['role'] = $role;
$halaman = "../form/login.php";
if ($role == "team") {
} else {
if ($role == "manager" || $role == "noc" || $role == "admin") {
$halaman = "../form/admin/";
}
}
// echo "<script> alert(''); window.location.href='".$halaman."';</script>";
showDialogUtama("Halo!", "Selamat datang " . $nama . " ! ", "success", "../form/admin/");
} else {
showDialogUtama("Maaf!", "Email atau password anda belum terdaftar, silahkan ulangi kembali!", "error", "../index.php");
// echo "<script> alert(' '); window.history.back();</script>";
}
}
<?php
include "../config/configuration.php";
if (isset($_POST['btn_save_spk'])) {
//generat sid
$id = gen_uuid();
//search nomor paling terakhir spk
$nilai_terakhir = mysqli_query($conn, "SELECT COALESCE(MAX(LEFT(no_spk, 4)+0), 0) as nilai_terakhir FROM t_surat_perintah_kerja") or die(mysqli_error());
$nilai_terakhir = mysqli_fetch_array($nilai_terakhir);
$nilai_terakhir = $nilai_terakhir['nilai_terakhir'];
// generate nomor spk
$nomor_spk = str_pad($nilai_terakhir + 1, 4, "0", STR_PAD_LEFT) . "/JAR/" . date("Y");
$id_pelanggan = $_POST['id_pelanggan'];
$id_team = $_POST['id_team'];
$cp_nama = $_POST['cp_nama'];
$cp_telepon = $_POST['cp_telepon'];
$masalah = $_POST['masalah'];
$catatan = htmlspecialchars($_POST['catatan']);
$akses = $_POST['akses'];
//save action
$str = "INSERT INTO t_surat_perintah_kerja (sid, no_spk, id_pelanggan, id_team, tanggal, cp_nama, cp_telepon, masalah, catatan, akses, status) VALUES \n \t('{$id}', '{$nomor_spk}', '{$id_pelanggan}', '{$id_team}', now(), '{$cp_nama}', '{$cp_telepon}', '{$masalah}', '{$catatan}', '{$akses}', 'NEW')";
// echo ">>>>".$str;
$query = mysqli_query($conn, $str) or die(showDialogUtama("Error!", mysqli_error($conn), "error", "../form/admin/?page=noc&form=new"));
if ($query) {
showDialogUtama("Berhasil", "Data Berhasil disimpan !", "success", "../form/admin/?page=noc&form=view");
// echo "<script>alert('Berhasil Menyimpan Data'); window.location.href = '';</script>";
} else {
showDialogUtama("Maaf!", "Data Gagal Disimpan!", "error", "../form/admin/?page=noc&form=new");
// echo "<script>alert('Gagal Menyimpan Data');window.history.back();</script>";
}
}
